Show Posts
1
17.7 Legacy Series / Can't make a LAGG interface work properly
« on: August 22, 2017, 07:46:31 pm »
Hi,
I'm testing OPNSense to replace my actual second level firewalls (not the one connected to the internet but between my public network and intern networks).
I configured a LAGG with 2 interfaces in LACP, on my cisco 3750 switch I configured the 2 matching ports in a channel group :
- bxe3 and bxe2 are the two physical interfaces plugged in gi2/0/46 and gi2/0/47 (same order) which are aggregated in port-channel 12 :
- LAGG lagg0 with members bxe2 and bxe3 and LACP protocol
I configured a static IPv4 address on my LAN (lagg0) interface but even if my switch is telling me that the ports are bundled, it does not work. Actually I can't see any packet between the FW and the switch.
Any idea ?
For now, I managed to lock myself out, I'm gonna start over tomorrow :-(
I'm testing OPNSense to replace my actual second level firewalls (not the one connected to the internet but between my public network and intern networks).
I configured a LAGG with 2 interfaces in LACP, on my cisco 3750 switch I configured the 2 matching ports in a channel group :
- bxe3 and bxe2 are the two physical interfaces plugged in gi2/0/46 and gi2/0/47 (same order) which are aggregated in port-channel 12 :
Code: [Select]
interface GigabitEthernet2/0/46
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 12 mode on
end
interface GigabitEthernet2/0/47
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 12 mode on
end
interface Port-channel12
switchport trunk encapsulation dot1q
switchport mode trunk
end
- LAGG lagg0 with members bxe2 and bxe3 and LACP protocol
I configured a static IPv4 address on my LAN (lagg0) interface but even if my switch is telling me that the ports are bundled, it does not work. Actually I can't see any packet between the FW and the switch.
Any idea ?
For now, I managed to lock myself out, I'm gonna start over tomorrow :-(